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(54) System and method for protected data input of security data 



(57) The present invention relates to a system and 
a method for protected data input of security data. The 
inventive system comprises an input device (1 ), an input 
device decoder (2) , and security data processing means 
(10), whereby a scrambling device (7) is interconnected 
between the input device (1) and the input device de- 
coder (2), whereby said scrambling device is able to 
pass on signals to said input device decoder, either en- 



crypted in a secure mode or unchanged in a normal 
mode, and whereby the operation mode of said scram- 
bling device is controlled by said security data process- 
ing means (10), which are able to decrypt the security 
data generated from said encrypted signals. 

A preferred embodiment of the inventive system fur- 
ther comprises a descramblerthat is interconnected into 
a serial control line of an output device and that receives 
a cryptographic key from a cryptographic device (10). 
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Description 

[0001 ] The present invention relates in general to data 
security systems and more particularly to a system for 
protected data input of security data comprising an input 5 
device an input device decoder that receives signals 
from the input device and generates input data and se- 
curity dniH processing means. The invention relates fur- 
thrrmore to a method for protected data input of security 

OV.lrl 

[0002) In order 10 fulfill the increased need for security 
a- ring data processing and data transmission conven- 
ts na systems use security information or security data 
to protect cither data transmission or the data to be 
transmir.cd tor instance by encrypting, to get access to 
certain resources or to ensure data or user authentica- 
tion For instance Personal Identification Number (PIN) 
arc used to enable safe data transmission, e.g. in elec- 
tronic banking applications by using appropriate soft- 
ware in the following the term "security data" covers in 
a broader sense all and any information requiring in- 
creased secrecy needs, which are reserved for author- 
ized persons only and enable access to other deter- 
mined information In practice, security data is for in- 
stance a PIN releasing the access to a cryptographic 
key being stored at a data medium or memory. For other 
applications, the cryptographic key itself could repre- 
sent the security data. 

[0003] US 6. 054. 340 describes a key pad scanning 
security system that uses a secure key pad device in- 
corporating measures to prohibit electronic eavesdrop- 
ping. However, the aim of this state of the art is not the 
direct protection of data or information. 
[0004] A computer keyboard console containing an 
integrated card reader is known from US 6 ; 056,1 93. The 
card reader is able to read so-called smart cards and to 
process security information stored on the smart card in 
a suitable form However, existing keyboards cannot be 
equipped additionally with the required card readers. On 
the contrary exchange of the existing keyboard would 
be required when this security means should be used. 
The illustrated security system can only be applied at 
matrix keyboards and requires an additional display unit 
for preventing so-called "spoofing attacks". Furthermore 
the system make use of a dedicated microprocessor 
and cannot use existing input device decoder and/or in- 
put device driver of the connected data processing sys- 
tem. Thus the costs of such a system are high and the 
flexibility is low. 

[0005] US 5.493.613 explains a combination PIN pad 
and terminal. There a full control of output device is 
needed. This would require to implement a whole driver 
for a complex display (e.g. telephone or handheld de- 
vice). 

[0006] Many computers and data processing devices 
employ operating system software that not provides a 
guaranteed secure channel for input of security data. 
Applications usually acquire data from the user by in- 



voking services provided by the personal trusted device. 
Usual computer architectures employ an input device, 
which is normally connected to an input device decoder. 
The input device decoder is programmed by an input 
device driver, which is part of the operating system soft- 
ware of the host device or computer. The input device 
driver finally delivers the symbol that has been entered. 
Generally spoken, from the input data path point of view, 
the overall system consists of an input device and pos- 
sibly further building blocks, that cannot be controlled 
by or interfered with any non-security application in or- 
der to get information on the actual value of the input, 
like a keyboard matrix; some building blocks (either soft- 
ware or hardware), that might be controlled by and/or 
interfered with some non-security application in order to 
get information on the actual value of the input, such as 
an input device driver; and the non-security application 
itself. Rogue software applications could grasp to secu- 
rity data by monitoring the operating system software or 
the input device driver. Snooping attacks could take 
place to find out user's PIN or other confidential data. It 
is also possible that spoofing attacks could occur if a 
rogue software application requests the input of security 
data, whereby the user is of the opinion that authorized 
software requests for the security data. 
[0007] Accordingly, there is a need for a system for 
protected data input of security data. A subject of the 
present invention is to implement a safe terminal device. 
A further subject of the present invention is to provide a 
system and a method by which a user can enter secret 
information in a way that only authorized software can 
use it and other programs running on the system cannot 
get that information. A focus of the invention is how to 
enter a Personal Identification Number (PIN) to access 
private key that is needed when a digital signature is 
created using a public key encryption algorithm. 
[0008] According to the present invention, a system 
is-provided, whereby a scrambling device is intercon- 
nected between the input device and the input device 
decoder, whereby said scrambling device is able to pass 
on the signals to said input device decoder, either mod- 
ified in a secure mode or unchanged in a normal mode, 
whereby the operation mode of said scrambling device 
is controlled by said security data processing means, 
which are able to decrypt the security data generated 
from said encrypted signals. 

[0009] A main advantage of the present invention is 
that any rouge application that has intercepted the us- 
er's input by monitoring the operating system software 
will be unable to determine the actual input of security 
data since it will have been scrambled in an unpredict- 
able manner. Furthermore, the invention provides the 
advantage that both the input device decoder and the 
input device driver serve its usual purposes. Thus no 
additional device driver or software application is nec- 
essary to decode the signals generated by the input de- 
vice The input device driver may take care of key- 
bounce as well. 
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[001 0] According to a preferred embodiment, the sys- 
tem further comprises a secure mode indicator which 
is controlled by said security data processing means 
and indicates the secure mode. In generally the secure 
mode is activated for the time of inputting security data. 5 
When using the secure mode indicator an authorized 
application is able to indicate the request of security data 
and the activation of the secure operation mode. If the 
user of the system detects that an application requests 
the input of security data although the secure mode in- 10 
dicator does not indicate the secure operation mode he 
will not enter security data like a PIN. 
[0011] An adapted embodiment has a cryptographic 
device as security data processing means and a line 
monitor, which is interconnected between a host proc- *5 
essor and said cryptographic device to monitor request- 
ing of a protected input, whereby said line monitor is able 
to activate the secure mode of the scrambling device 
and to turn on the secure mode indicator to indicate se- 
cure mode to the user. Advantageously a tamperproof 20 
cryptographic device is used, e.g. a smart card reader 
with a smart card. Such a line monitor is needed if con- 
ventional cryptographic devices are implemented with 
smart cards, which have only a single serial input/output 
line and cannot count on the connected host processor 25 
to maintain security state and to execute the request for 
protected input in a safe manner. 
[0012] According to a modified embodiment said se- 
curity data processing means is a security software ap- 
plication running on a host processor (CPU). This way 30 
conventional systems can be upgraded with a scram- 
bling device, to produce an inventive secure system. 
[0013] Furthermore, according to the present inven- 
tion a method for protecting the data input of security 
data is provided. The method comprises the steps of: 35 

• activating a secure mode of a scrambling device, 
which is interconnected between an input device 
and an input device decoder, if security data are re- 
quested by security data processing means; 40 

• encrypting signals generated by the input device 
within the scrambling device; 

• transferring the encrypted signals to an input device 
decoder to create encrypted data; 

• decrypting the encrypted data within said security 45 
data processing means to obtain the security data; 

• activating a normal mode of the scrambling device, 
without encryption of the signals generated by the 
input device. 

50 

[0014] According to a preferred embodiment of the 
method the step of encrypting signals takes place by 
mixing the signal lines, which feed the signals from the 
input device to the input device decoder. This is a very 
simple possibility to scramble the signals and so it is 55 
cheaply and easy to implement in conventional sys- 
tems. 

[001 5] The features of the invention are set forth with 



particularity in the appended claims. The invention itself 
together with its further objects and advantages thereof, 
may be best understood by reference to the following 
detailed description when taken in conjunction with the 
accompanying drawing. The figures show: 

Fig. 1 a block diagram in principle of a first embodi- 
ment of the inventive system including a se- 
cure software application; 

Fig. 2 a block diagram in principle of a second em- 
bodiment including a line monitor. 

[0016] Fig. 1 shows a block diagram of a system for 
protected data input of security data. The system in- 
cludes an input device 1 and an input device decoder 2. 
For example, a typical PC keyboard contains both the 
input device (key matrix) and the input device decoder 
(keyboard controller). Furthermore the system compris- 
es operating system software running on a Central Proc- 
essor Unit (CPU) 3, so far as the inventive system is 
realized with a microprocessor and software applica- 
tions running on said microprocessor. An input device 
driver 4 is part of the operating system software or works 
together with the operating system software. Some soft- 
ware applications 5 run based on operating system soft- 
ware during a normal operation mode of the microproc- 
essor 3. 

[0017] Like in conventional computer systems, the in- 
put device is connected to the input device decoder by 
a number of signal lines. The input device decoder is 
programmable by the input device driver and transfers 
the decoded input signals as input data to the input de- 
vice driver The input device driver finally delivers the 
symbol that has been entered by the user for further 
processing within the software applications. For exam- 
ple, the input device consists of a matrix with switches 
at each cross representing the keys of the input device. 
In this case, the input device decoder would consist of 
a parallel input/output controller, which multiplexes data 
lines to and from the matrix, identifies the switch that 
has been closed by pressing the key and delivers an 
identifier corresponding to that switch (e.g. a scan 
code). The input device driver takes the switch identifier 
and computes the symbol that corresponds to that key. 
The input device decoder and/or the input device driver 
may take care of keybounce and repetition as well. 
[0018] According to the present invention there exists 
a scrambling device 7, which is interconnected between 
the input device 1 and the input device decoder 2. The 
scrambling device 7 scrambles or encrypts the signals 
provided by the input device 1 . The encryption of the 
signals takes place right next to the input device. Thus, 
no hardware means or software application is able to 
read the signals of the input device before they are fed 
into the scrambling device 7. 

[0019] The scrambling device 7 is able to pass on the 
signals to the input device decoder 2. Dependent on the 
operation mode, the scrambling device encrypts the sig- 
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nals in a secure mode or passes on the signals un- 
changed in a normal mode. The simplest way of encryp- 
tion of the signals is to mix the signal lines between the 
input device and the input device decoder. For this an 
arbitrary value (i.e. encryption key) can be written to 
some multiplexer control circuits, which will have the ef- 
fect of mixing the keyboard scan and input lines in an 
unpredictable manner. In the normal operation mode or 
non-secure mode, the scrambling device is deactivated. 
In case of a matrix keypad that means each line of a first 
line bundle 8 is connected to corresponding line of a sec- 
ond line bundle 9, which connects the scrambling device 
7 to the input device decoder 2. Consequently, the pres- 
ence of that scrambling device is not obvious to the op- 
erating system software running on the microprocessor. 
[0020] The inventive system includes further security 
data processing means 1 0, which is a security software 
application in the embodiment depicted in Fig. 1. The 
security software will be executed by the microproces- 
sor 3 in connection with the operating system software. 
Security data processing means 10 have a first direct 
connection 11 to the scrambling device 7, in order to 
control the operation mode of it. By using this first direct 
connection 11, it is possible to activate the security 
mode of the scrambling device 7. The security software 
application 10 will activate the security mode if input of 
security data is required. During the secure mode the 
signals created by the input device 1 will be passed on 
to the input device decoder in a scrambled or encrypted 
form. The security software application knows the cryp- 
tographic key or the scrambling algorithm and is able to 
decrypt the data generated by the input device driver 4 
during the secure mode. However, no other application, 
e.g. rogue software, is able to read or understand the 
correct security data entered by the user. 
[0021] A modified embodiment of the inventive sys- 
tem comprises cryptographic key generation means. 
This key generation means could be integrated within 
the security data processing means. The cryptographic 
key generation means creates a cryptographic key and 
transmits the generated key to the scrambling device 7 
and if necessary to the security data processing means 
1 0. The cryptographic key can be used for encryption of 
the signals within the scrambling device 7 during one 
period of inputting security data. It is possible to use one 
cryptographic key for a number of encryption phases or 
to implement a fixed cryptographic key in the scrambling 
device. In an adapted embodiment, it is possible to cre- 
ate a new cryptographic key for each encryption period 
or if necessary for each consecutive entered symbol, if 
great security demands exist. As above mentioned in 
case of the matrix example the scrambler may just swap 
different lines, e.g. connect output line A of first line bun- 
dle 8 with output line C of second line bundle 9; same 
holds for input lines. Effectively this results in virtual re- 
mapping of the key matrix. 

[0022] Accordingly the input device driver will not 
identify the correct switch of the matrix that has been 



closed but identify a wrong one and consequently deliv- 
er the wrong symbol. A malicious application cannot 
snoop the entered key. The secure application, knowing 
about the re-mapping, can compute the right symbol. 

5 After collecting all symbols composing the security data 
(e.g. the PIN) the data are checked. 
[0023] Another mode of operation does not need to 
know aboutthe actual value of the PIN. If the scrambling 
algorithm and parameters are the same for PIN initiali- 

10 zation and PIN verification, the actual value of the PIN 
is irrelevant. 

[0024] Returning to Fig. 1 , the security data process- 
ing means 10 are connected via a second direct con- 
nection 12 to a secure mode indicator 13. The secure 

is mode indicator 13 could be a stand-alone-device or 
could be integrated in a usual output device, e.g. a dis- 
play. The security mode indicator 13 can only be con- 
trolled by security data processing means or security 
software application. The secure mode indicator 13 is 

20 activated only during the secure mode of the scrambling 
device 7. In such manner the user can see whether or 
not the secure mode is activated and would never enter 
security data like a PIN if security mode indicator does 
not show the secure operation mode. 

25 [0025] A typical procedure to operate the system is 
the following: If the secure software application wants 
to get a PIN entry to authenticate the user, the secure 
mode indicator 13 is activated indicating to the user the 
entry of PIN is protected. Furthermore the scrambling 

30 device 7 is activated and set to the secure mode. After 
inputting the PIN the secure mode indicator 13 is 
switched off and the scrambling device 7 is set to the 
normal operation mode (insecure mode). 
[0026] Fig. 2 shows a block diagram of a modified ern- 

35 bodiment of the inventive system. Components of the 
same kind as in Fig. 1 are labeled with the same refer- 
ence signs. The main difference to the above-men- 
tioned embodiment is that the security data processing 
means is a tamperproof cryptographic device 10 and 

40 that a line monitor 15 is interconnected between a mi- 
croprocessor (CPU) 3 and said cryptographic device 10 
at a serial input/output line 1 6 that connects microproc- 
essor to cryptographic device. 

[0027] The operation of this embodiment is described 
45 now concerning the creation of a digital signature. A 
software program running on the microprocessor wants 
to create a digital signature. For this purpose it make 
use of the tamperproof cryptographic device 10. Cryp- 
tographic functions can be used only if the user has en- 
50 tered correct PIN codes. Encryption of the PIN code 
must be done by the scrambling device 7 with the key 
provided by the cryptographic device 10. The crypto- 
graphic key can be different each time when PIN code 
is used. Tamperproof cryptographic device holds the us- 
55 ers secret keys and offers cryptographic functions, like 
digital signature, calculating message authentication 
code, one-time password or communication key. Exam- 
ples of these devices are subscriber identity module 
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(SIM) or wireless identity module (WIM). 
[0028] The line monitor 1 5 is interconnected in the in- 
put/output line 1 6 between the microprocessor 3 and the 
cryptographic device 10. When the line monitor 15 de- 
tects a special command sequence to start the secure 
mode, it will activate the secure mode of the scrambling 
device 7, i.e. the safe PIN entry. In the above-mentioned 
manner, the scrambling device 7 is used to encrypt the 
security data, i.e. PIN. The scrambling device gets the 
encryption key from the cryptographic device 10 through 
the line monitor 15 or from separate cryptographic key 
generation means (not shown). The line monitor also 
controls the secure mode indicator 1 3, which is part of 
the output device in this case. A line monitor is needed 
because conventional cryptographic devices are imple- 
mented with smart cards and they have only a single 
serial input/output line. Conventional smart cards are 
unable to control a scrambling device directly. Of 
course, it is possible to develop a new smart card gen- 
eration with the possibility of direct controlling of a 
scrambling device. 

[0029] The secure mode indicator 13 could be a light 
emitting diode (LED) or a segment in liquid crystal dis- 
play (LCD). If output device is controlled with a serial 
line, secure mode indicator could be replaced with a de- 
scrambler on that line. In this case, the cryptographic 
device and the user will share a secret not known to the 
software applications running on the microprocessor. 
Cryptographic device sets the scrambling device to se- 
cure mode, sends the secret encrypted to the micro- 
processor that consecutively sends it to the output de- 
vice. Descrambler decrypts the secret and it will appear 
in clear text to the user, indicating that it is safe to enter 
the security data. Such a secret could be a text or a pic- 
ture. This descrambler effectively works the same way 
as for input of protected data. 
[0030] As an example, the method for making a digital 
signature will be described now. If any software program 
provides data to be digitally signed, the program re- 
quests the signing service from the cryptographic device 
10, like a smart card inserted into a smart card reader. 
Thereupon the cryptographic device 10 (or the micro- 
processor 3) sends a special command (byte sequence) 
to activate the line monitor 15. As a result the line mon- 
itor 15 takes control over the input/output line and blocks 
the data transmission between microprocessor 3 and 
cryptographic device 1 0. In a modified embodiment, the 
line monitor 1 5 continuously checks the data transfer on 
line 16 so that itself notes the request of producing a 
digital signature. In the next step, the cryptographic de- 
vice 10 continues by sending an encryption key to the 
line monitor 1 5. Of course the line monitor could receive 
the encryption key from separated key generation 
means or create the key by itself. Consequently the line 
monitor 1 5 transfers the cryptographic key to the scram- 
bling device 7 and activates the secure mode indicator 
13, in order to display beginning of the secure mode. 
Now line monitor 15 can release the line 16, i.e. con- 



8 

necting the software program running on the microproc- 
essor to the cryptographic device 1 0. Line monitor 1 5 or 
cryptographic device 10 sends a "secure mode on" re- 
sult to the program and program asks the user to enter 
5 the PIN code for using digital signature. The user finds 
out from the secure mode indicator 1 3 that secure mode 
is activated and enters the required PIN code. The 
scrambling device 7 encrypts the signals received from 
input device 1 representing the PIN code. The encrypted 
10 signals delivered from the scrambling device will be han- 
dled by the input device driver in the known manner. As 
soon as all security data, i.e. PIN code was inputted, the 
program sends a determined command to the line mon- 
itor 15, in order to stop the secure operation mode and 
15 go back to the normal operation mode. Line monitor 15 
turns off the secure mode indicator 13 and sets the 
scrambling device 7 to normal mode. Program sends 
data to be signed together with encrypted PIN code to 
the cryptographic device 10, which first decrypts the PIN 
using the previously set cryptographic key. After verify- 
ing PIN the cryptographic device signs the data and 
sends it back to the microprocessor and the software 
application respectively. 

[0031] It is to be noted that adapted embodiments are 
possible, e.g. the implementing of the described com- 
ponents within ASIC's (application specific integrated 
circuits). 

[0032] It is apparent from this that the inventive sys- 
tem and method enable the protected data input. The 
described secure part of the system offers a more se- 
cure input service to any other applications. 



Claims 

1. System for protected data input of security data, 
comprising: 

• an input device (1); 

• an input device decoder (2), which receives sig- 
nals from the input device and generates input 
data; 

• security data processing means (1 0); 

characterised in that a scrambling device (7) is in- 
terconnected between the input device (1) and the 
input device decoder (2), whereby said scrambling 
device is able to pass on the signals to said input 
device decoder, either encrypted in a secure mode 
or unchanged in a normal mode, whereby the op- 
eration mode of said scrambling device is controlled 
by said security data processing means (10), which 
are able to decrypt the security data generated from 
said encrypted signals. 

2. System according to claim 1 , further comprising a 
secure mode indicator (13), which is controlled by 
said security data processing means (10) and indi- 
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cates the secure mode, whereby said secure mode 
is activated for the time of inputting security data. 

System according to claim 2, characterised in that 

said security data processing means is a crypto- 5 
graphic device (10), and in that a line monitor (15) 
is interconnected between a microprocessor (3) 
and said cryptographic device to monitor requesting 
of an encrypting process, whereby said line monitor 
is able to activate the secure mode of the scram- 10 
bling device (7) andtosetthe secure mode indicator 
(1 3) to indicate the secure mode to a user. 

System according to claim 3, characterised in that 

said cryptographic device (10) is a smart card in- 15 
eluding a private key of an asymmetric key pair. 

System according to claim 3 or 4, characterised in 
that said secure mode indicator is replaced with a 
descrambler that is interconnected into a serial con- 20 
trol line of an output device and that receives a cryp- 
tographic key from said cryptographic device (10). 

System according to claim 1 or 2, characterised in 
that said security data processing means is a se- 25 
curity software application (10) running on a micro- 
processor (3). 



rity data processing means (10) to obtain the 
security data; 
• activating a normal mode of the scrambling de- 
vice (7), without encryption of the signals gen- 
erated from the input device (1). 

11. Method according to claim 10, further comprising 
the step of indicating the secure mode by activating 
a secure mode indicator (13), which is controlled ex- 
clusive by said security data processing means 
(10). 

12. Method according to claim 10 or 11, whereby the 
step of encrypting signals takes place by mixing the 
signal lines (8, 9), which feed the signals from the 
input device (1) to the input device decoder (2). 

13. Method according to any of the claims 10 to 12 fur- 
ther comprising the steps of generating a crypto- 
graph ic key and using said cryptographic key for en- 
crypting the signals generated by the input device 
(1 ) and for decrypting the encrypted data delivered 
by the input device decoder (2). 



System according to any of the preceding claims, 
further comprising cryptographic key generation 30 
means, which generate a new cryptographic key 
every time if the secure mode is activated. 



System according to any of the preceding claims, 
characterised in that the scrambling device (7) us- 35 
es different cryptographic keys for consecutive in- 
put signals in the same period of secure mode. 



System according to any of the claims 1 to 7, char- 
acterised in that the scrambling device (7) mixes 40 
some of the signal lines (8, 9) between the input de- 
vice and the input device decoder while being in the 
secure mode, for the purpose of encrypting the sig- 
nals. 

45 

Method for protecting the data input of security data 
comprising the steps of: 



activating a secure mode of a scrambling de- 
vice (7), which is interconnected between an in- so 
put device (1 ) and an input device decoder (2), 
if security data are requested by security data 
processing means (10); 
encrypting signals generated by the input de- 
vice (1 ) within the scrambling device (7); 55 
transferring the encrypted signals to the input 
device decoder (2) to create encrypted data; 
decrypting the encrypted data within said secu- 
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